burpsuite AI Agent Skills

Browse 17 skills related to burpsuite

burpsuite-project-parser

3.0k
trailofbitstrailofbits

Searches and explores Burp Suite project files (.burp) from the command line. Use when searching response headers or bodies with regex patterns, extracting security audit findings, dumping proxy history or site map data, or analyzing HTTP traffic captured in a Burp project.

132 days ago

BurpSuite Security Testing

71
PramodDuttaPramodDutta

Web application security testing using BurpSuite for proxy-based interception, scanning, and manual penetration testing of web applications.

burpsuitesecuritypentest+2
132 days ago

Pentesting from Beginner to Advanced

14
zebbernzebbern

The assistant provides a structured web application penetration testing learning path from fundamentals to advanced techniques. Activate when users ask about "learning pentesting," "web security training," "OWASP vulnerabilities," "BurpSuite tutorial," "penetration testing roadmap," or "web app security course."

trainingweb-securityowasp+2
132 days ago

burpsuite-project-parser

7
plurigridplurigrid

Searches and explores Burp Suite project files (.burp) from the command line. Use when searching response headers or bodies with regex patterns, extracting security audit findings, dumping proxy history or site map data, or analyzing HTTP traffic captured in a Burp project.

131 days ago

testing-for-business-logic-vulnerabilities

2
mukul975mukul975

Identifying flaws in application business logic that allow price manipulation, workflow bypass, and privilege escalation beyond what technical vulnerability scanners can detect.

penetration-testingbusiness-logicowasp+3
131 days ago

testing-for-xss-vulnerabilities-with-burpsuite

2
mukul975mukul975

Identifying and validating cross-site scripting vulnerabilities using Burp Suite's scanner, intruder, and repeater tools during authorized security assessments.

penetration-testingxssburpsuite+3
131 days ago

performing-csrf-attack-simulation

2
mukul975mukul975

Testing web applications for Cross-Site Request Forgery vulnerabilities by crafting forged requests that exploit authenticated user sessions during authorized security assessments.

penetration-testingcsrfowasp+3
131 days ago

exploiting-server-side-request-forgery

2
mukul975mukul975

Identifying and exploiting SSRF vulnerabilities to access internal services, cloud metadata, and restricted network resources during authorized penetration tests.

penetration-testingssrfowasp+3
131 days ago

performing-web-cache-poisoning-attack

2
mukul975mukul975

Exploiting web cache mechanisms to serve malicious content to other users by poisoning cached responses through unkeyed headers and parameters during authorized security tests.

penetration-testingcache-poisoningweb-security+3
131 days ago

exploiting-idor-vulnerabilities

2
mukul975mukul975

Identifying and exploiting Insecure Direct Object Reference vulnerabilities to access unauthorized resources by manipulating object identifiers in API requests and URLs.

penetration-testingidoraccess-control+3
131 days ago

testing-jwt-token-security

2
mukul975mukul975

Assessing JSON Web Token implementations for cryptographic weaknesses, algorithm confusion attacks, and authorization bypass vulnerabilities during security engagements.

penetration-testingjwtauthentication+3
132 days ago

testing-for-xxe-injection-vulnerabilities

2
mukul975mukul975

Discovering and exploiting XML External Entity injection vulnerabilities to read server files, perform SSRF, and exfiltrate data during authorized penetration tests.

penetration-testingxxexml-injection+3
131 days ago

testing-api-security-with-owasp-top-10

2
mukul975mukul975

Systematically assessing REST and GraphQL API endpoints against the OWASP API Security Top 10 risks using automated and manual testing techniques.

penetration-testingapi-securityowasp+4
131 days ago

exploiting-http-request-smuggling

2
mukul975mukul975

Detecting and exploiting HTTP request smuggling vulnerabilities caused by Content-Length and Transfer-Encoding parsing discrepancies between front-end and back-end servers.

penetration-testingrequest-smugglinghttp-desync+3
131 days ago

exploiting-websocket-vulnerabilities

2
mukul975mukul975

Testing WebSocket implementations for authentication bypass, cross-site hijacking, injection attacks, and insecure message handling during authorized security assessments.

penetration-testingwebsocketweb-security+3
132 days ago

intercepting-mobile-traffic-with-burpsuite

2
mukul975mukul975

Intercepts and analyzes HTTP/HTTPS traffic from mobile applications using Burp Suite proxy to identify insecure API communications, authentication flaws, data leakage, and server-side vulnerabilities. Use when performing mobile application penetration testing, assessing API security, or evaluating client-server communication patterns. Activates for requests involving mobile traffic interception, Burp Suite mobile proxy, API security testing, or mobile HTTPS analysis.

mobile-securityandroidios+3
131 days ago

testing-cors-misconfiguration

2
mukul975mukul975

Identifying and exploiting Cross-Origin Resource Sharing misconfigurations that allow unauthorized cross-domain data access and credential theft during security assessments.

penetration-testingcorsweb-security+3
131 days ago
ClawiskillClawiskill
Network
Building with
?

Join Clawiskill today. The decentralized skill network for AI Agents.

Registry
70K+
Agent Joins
120K+
Explore Network